Lucene search
K

39 matches found

Circl
Circl
added 2026/05/22 12:39 p.m.7 views

CVE-2015-3152

creationtimestamp| type| source ---|---|--- 2026-05-22 12:39:13+00:00| seen| https://gist.github.com/rayepenber095/9265581788dc4d7e014abf52554d8b7f...

5.9CVSS6.6AI score0.07083EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-8704

Malware in sbrugna...

5.9CVSS7.5AI score0.01734EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/04/15 12:0 a.m.12 views

RHEL 6 / 7 : mariadb55-mariadb (RHSA-2015:1647)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:1647 advisory. MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. It was found that the MySQL client...

5.9CVSS7.4AI score0.09984EPSS
Exploits1References39
F5 Networks
F5 Networks
added 2023/02/21 6:46 p.m.45 views

K16845: MySQL vulnerability CVE-2015-3152

Security Advisory Description An unspecified vulnerability in the MySQL Client component in Oracle MySQL 5.7.2 and earlier allows an attacker to downgrade MySQL SSL/TLS connections, snoop database queries and results, or directly manipulate database contents. CVE-2015-3152 Impact Although the...

5.9CVSS5.9AI score0.07083EPSS
Exploits1Affected Software14
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.57 views

EulerOS Virtualization for ARM 64 3.0.2.0 : perl-DBD-MySQL (EulerOS-SA-2021-2072)

According to the versions of the perl-DBD-MySQL package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The DBD::mysql module through 4.043 for Perl uses the mysqlssl=1 setting to mean that SSL is optional even thou...

9.8CVSS6.7AI score0.07083EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2020/09/29 12:0 a.m.72 views

EulerOS Virtualization for ARM 64 3.0.6.0 : perl-DBD-MySQL (EulerOS-SA-2020-2044)

According to the version of the perl-DBD-MySQL package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - The DBD::mysql module through 4.043 for Perl uses the mysqlssl=1 setting to mean that SSL is optional even though...

5.9CVSS6.8AI score0.07083EPSS
Exploits1References2
Veracode
Veracode
added 2019/05/02 5:17 a.m.32 views

Man-in-the-Middle Attack

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. It was found that the MySQL client library permitted but did not require a client to use SSL/TLS when establishing a secure connection to a MySQL server using the "--ssl" option. A man-in-the-middle...

5.9CVSS6.3AI score0.07083EPSS
Exploits1References21Affected Software2
OpenVAS
OpenVAS
added 2018/05/30 12:0 a.m.33 views

openSUSE: Security Advisory for perl-DBD-mysql (openSUSE-SU-2018:1463-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS6.7AI score0.07083EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/05/29 12:0 a.m.43 views

SUSE SLES11 Security Update : perl-DBD-mysql (SUSE-SU-2018:1449-1) (BACKRONYM)

This update for perl-DBD-mysql fixes the following issues : - CVE-2017-10789: The DBD::mysql module when with mysqlssl=1 setting enabled, means that SSL is optional even though this setting's documentation has a 'your communication with the server will be encrypted' statement, which could lead...

9.8CVSS7AI score0.07083EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2018/01/31 12:0 a.m.123 views

pfSense < 2.2.4 Multiple Vulnerabilities (SA-15_07)

According to its self-reported version number, the remote pfSense install is prior to 2.2.4. It is, therefore, affected by multiple vulnerabilities as stated in the referenced vendor advisories. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid106496;...

7.1CVSS6.9AI score0.07083EPSS
Exploits1References5
Prion
Prion
added 2017/07/01 6:29 p.m.30 views

Sql injection

The DBD::mysql module through 4.043 for Perl uses the mysqlssl=1 setting to mean that SSL is optional even though this setting's documentation has a "your communication with the server will be encrypted" statement, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrad...

4.3CVSS5.6AI score0.07083EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2016/05/16 10:59 a.m.25 views

CVE-2015-3152

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C aka libmysqlclient before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack...

5.9CVSS5.5AI score0.07083EPSS
Exploits1References17
UbuntuCve
UbuntuCve
added 2016/05/16 10:59 a.m.43 views

CVE-2015-3152

Oracle MySQL before 5.7.3, Oracle MySQL Connector/C aka libmysqlclient before 6.1.3, and MariaDB before 5.5.44 use the --ssl option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, aka a "BACKRONYM" attack...

5.9CVSS6.8AI score0.07083EPSS
Exploits1References4
Prion
Prion
added 2016/05/16 10:59 a.m.35 views

Sql injection

ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152...

4.3CVSS6.8AI score0.07083EPSS
Exploits1References9Affected Software1
CVE
CVE
added 2016/05/16 10:0 a.m.712 views

CVE-2015-3152

The CVE-2015-3152 issue affects MySQL client libraries where the --ssl flag is treated as optional, allowing a MITM downgrade to cleartext SSL and server spoofing. Affected products/versions include Oracle MySQL prior to 5.7.3, Oracle MySQL Connector/C (libmysqlclient) prior to 6.1.3, and MariaDB...

5.9CVSS5.6AI score0.07083EPSS
Exploits1References17Affected Software2
OpenVAS
OpenVAS
added 2015/12/11 12:0 a.m.59 views

openSUSE: Security Advisory for Security (openSUSE-SU-2015:2243-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.74483EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2015/10/22 12:0 a.m.38 views

SUSE SLED11 / SLES11 Security Update : mysql (SUSE-SU-2015:1788-1) (BACKRONYM)

MySQL was updated to version 5.5.45, fixing bugs and security issues. A list of all changes can be found on : - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-45.html - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html To fix the 'BACKRONYM' security issue CVE-2015-3152 the...

6.5CVSS6.8AI score0.07083EPSS
Exploits1References45
OpenVAS
OpenVAS
added 2015/10/15 12:0 a.m.36 views

Mageia: Security Advisory (MGASA-2015-0279)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.7AI score0.07083EPSS
Exploits1References7
OSV
OSV
added 2015/09/22 7:37 a.m.9 views

SUSE-SU-2015:1788-1 Security update for mysql

MySQL was updated to version 5.5.45, fixing bugs and security issues. A list of all changes can be found on: - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-45.html - http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-44.html To fix the 'BACKRONYM' security issue CVE-2015-3152 the...

6.5CVSS6.1AI score0.07083EPSS
Exploits1References24
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.50 views

Amazon Linux: Security Advisory (ALAS-2015-583)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.3AI score0.07083EPSS
Exploits2References4
Rows per page
Query Builder